{"vulnerability": "cve-2019-1837", "sightings": [{"uuid": "180fbaea-371f-48e2-94f3-dfd60d7189b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10119", "content": "#exploit\n1. CVE-2024-26135:\nMeshCentral Cross-Site Websocket Hijacking\nhttps://www.praetorian.com/blog/meshcentral-cross-site-websocket-hijacking-vulnerability\n\n2. Brew LPE exploit on Intel macOS\nhttps://github.com/gergelykalman/brew-lpe-via-periodic\n\n3. CVE-2019-18370, CVE-2019-18371:\nXiaomi series router RCE\nhttps://ultramangaia.github.io/blog/2019/Xiaomi-Series-Router-Command-Execution-Vulnerability.html", "creation_timestamp": "2024-03-10T00:23:58.000000Z"}, {"uuid": "31f1119b-7771-4bff-9ab9-8cb565532bde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18370", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10119", "content": "#exploit\n1. CVE-2024-26135:\nMeshCentral Cross-Site Websocket Hijacking\nhttps://www.praetorian.com/blog/meshcentral-cross-site-websocket-hijacking-vulnerability\n\n2. Brew LPE exploit on Intel macOS\nhttps://github.com/gergelykalman/brew-lpe-via-periodic\n\n3. CVE-2019-18370, CVE-2019-18371:\nXiaomi series router RCE\nhttps://ultramangaia.github.io/blog/2019/Xiaomi-Series-Router-Command-Execution-Vulnerability.html", "creation_timestamp": "2024-03-10T00:23:58.000000Z"}, {"uuid": "e12202a3-b2ba-410f-a260-7344161121c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-23)", "content": "", "creation_timestamp": "2025-02-23T00:00:00.000000Z"}, {"uuid": "ad548a93-7056-4bf1-a0c4-5a0ba309fba8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-05-06)", "content": "", "creation_timestamp": "2025-05-06T00:00:00.000000Z"}, {"uuid": "81ee3400-a209-43c3-b97c-ec14f97213a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-11)", "content": "", "creation_timestamp": "2025-07-11T00:00:00.000000Z"}, {"uuid": "602baa11-4047-4f92-ae8e-01341c76dae2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-07-25)", "content": "", "creation_timestamp": "2025-07-25T00:00:00.000000Z"}, {"uuid": "08cf7a0f-ae2e-4bc6-8603-0b65c2b20ec5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-09-07)", "content": "", "creation_timestamp": "2025-09-07T00:00:00.000000Z"}, {"uuid": "d70e1961-4219-49f5-a3c5-1c9d270cf99c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "seen", "source": "https://t.me/ctinow/174700", "content": "https://ift.tt/OdycHmb\nCVE-2019-18371 | Xiaomi Mi WiFi R3G up to 2.28.22 Nginx Alias account path traversal", "creation_timestamp": "2024-01-27T09:11:40.000000Z"}, {"uuid": "af0de0cb-7802-4dc3-9c25-2f22962123d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18370", "type": "seen", "source": "https://t.me/ctinow/174699", "content": "https://ift.tt/uytJdEP\nCVE-2019-18370 | Xiaomi Mi WiFi R3G up to 2.28.22 Backup File /tmp/speedtest_urls.xml input validation", "creation_timestamp": "2024-01-27T09:11:39.000000Z"}, {"uuid": "2ab208c8-a078-44a8-9a44-d5a7e54a056c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-02-20)", "content": "", "creation_timestamp": "2025-02-20T00:00:00.000000Z"}, {"uuid": "097b3f44-0dda-4317-b6c4-c8f287bcf65b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-23)", "content": "", "creation_timestamp": "2025-02-23T00:00:00.000000Z"}, {"uuid": "ef81b117-3d8c-4297-bb5e-17cdbb120148", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18377", "type": "seen", "source": "https://t.me/ctinow/204244", "content": "https://ift.tt/QtLMlDG\nCVE-2019-18377 | Symantec Messaging Gateway up to 10.7.2 privileges management", "creation_timestamp": "2024-03-10T13:11:54.000000Z"}, {"uuid": "7545ac0a-15e4-4d72-a07a-0c9067212114", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-07-01)", "content": "", "creation_timestamp": "2025-07-01T00:00:00.000000Z"}, {"uuid": "12c5c593-2bb8-4b22-a300-629ce5a387f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18371", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-07-23)", "content": "", "creation_timestamp": "2025-07-23T00:00:00.000000Z"}, {"uuid": "851cf309-3dbd-4058-a638-9f9a6b0a77f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18379", "type": "seen", "source": "https://t.me/ctinow/204246", "content": "https://ift.tt/KsgjC9H\nCVE-2019-18379 | Symantec Messaging Gateway up to 10.7.3 server-side request forgery", "creation_timestamp": "2024-03-10T13:11:55.000000Z"}, {"uuid": "6c10d098-fb96-40c1-b172-68d4166e7193", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2019-18378", "type": "seen", "source": "https://t.me/ctinow/204245", "content": "https://ift.tt/7GHUTR9\nCVE-2019-18378 | Symantec Messaging Gateway up to 10.7.2 cross site scripting", "creation_timestamp": "2024-03-10T13:11:55.000000Z"}]}